CA/Browser Forum posts
Posts by tag Server Certificates
Ballot SC-088v3: DNS TXT Record with Persistent Value DCV Method
October 9, 2025 by Wayne ThayerBallot SC-088v3: DNS TXT Record with Persistent Value DCV MethodVoting Results Certificate Issuers 26 votes in total:
October 9, 2025 by Wayne ThayerBallot SC-088v3: DNS TXT Record with Persistent Value DCV MethodVoting Results Certificate Issuers 26 votes in total:
2025-09-11 Minutes of the Server Certificate Working Group
September 11, 2025 by Wayne ThayerMinutes of the Server Certificate Working Group teleconference - September 11, 2025Meeting Date: 2025-09-11 Note Well: Read by Dimitris Zacharopoulos. Review of Agenda: No additions or changes. Approval of Minutes: July 17, 2025 Teleconference (Draft minutes were distributed on 2025-09-01) approved.
September 11, 2025 by Wayne ThayerMinutes of the Server Certificate Working Group teleconference - September 11, 2025Meeting Date: 2025-09-11 Note Well: Read by Dimitris Zacharopoulos. Review of Agenda: No additions or changes. Approval of Minutes: July 17, 2025 Teleconference (Draft minutes were distributed on 2025-09-01) approved.
Ballot SC-092: Sunset use of Precertificate Signing CAs
September 2, 2025 by Wayne ThayerVoting Results Certificate Issuers 29 votes in total:
September 2, 2025 by Wayne ThayerVoting Results Certificate Issuers 29 votes in total:
2025-08-28 Minutes of the Server Certificate Working Group
August 28, 2025 by Wayne ThayerFinal Minutes – Server Certificate Working Group Teleconference (28 August 2025)1. Roll Call For attendance, see Item 11 below.
August 28, 2025 by Wayne ThayerFinal Minutes – Server Certificate Working Group Teleconference (28 August 2025)1. Roll Call For attendance, see Item 11 below.
2025-07-31 Minutes of the Server Certificate Working Group
July 31, 2025 by Wayne ThayerMinutes of the CA/BF ServerCert Working Group, 2025-07-31Administrivia Minutes taken by Aaron Gable Recording started Attendance taken by Webex Note-well read by Wayne Thayer Agenda (shared by Dmitris Zacharopoulos) approved Prior minutes 2025-04-10 teleconference (taken by Trevoli Ponds-White): approved 2025-07-17 teleconference (taken by Scott Rea): not yet distributed Membership applications Joshua Garrett approved as individual Interested Party Ballot Status In discussion period SC086: Sunset the Inclusion of Address and Routing Parameter Area Names No updates at this time In IPR review period SC089: Mass Revocation Planning Recently published guidelines SC085: Require DNSSEC for CAA and DCV Lookups Published as TLS BR v2.1.6 Drafts SC087: Registration Number Improvement for EV Certificates Corey Bonnell: no updates at this time SC088: Persistent DNS DCV Michael Slaughter: no updates at this time Wayne Thayer: planning to move this into discussion period soon SC0XX: Process RFC 8657 CAA Parameters Wayne Thayer: was on hold until SC085 passed, now ready to proceed SC0XX: Validation method in TLS Certificates Clint Wilson: no updates at this time Topic: Debian Weak Keys Martijn Katerbarg: Planning to add P-521 Weak Keys to the CABF Debian Weak Keys repository This is not a new requirement; any CAs issuing P-521 certs should have generated these themselves already Any Other Business Next call 2025-08-28 August 14 is cancelled due to no available chairs Attendees Aaron Gable (Let’s Encrypt), Aaron Poulsen (Amazon), Alvin Wang (SHECA), Ben Wilson (Mozilla), Brianca Martin (Amazon), Chad Dandar (Cisco Systems), Chris Clements (Google), Clint Wilson (Apple), Corey Bonnell (DigiCert), Corey Rasmussen (OATI), Cynethia Brown (US Federal PKI Management Authority), Daryn Wright (Apple), Dean Coclin (DigiCert), Doug Beattie (GlobalSign), Gregory Tomko (GlobalSign), Inaba Atsushi (GlobalSign), Iori Kondo (Cybertrust Japan), Jaime Hablutzel (OISTE Foundation), Jeanette Snook (Visa), Jeff Ward (CPA Canada/WebTrust), Johnny Reading (GoDaddy), Josselin Allemandou (Certigna (DHIMYOTIS)), Jun Okura (Cybertrust Japan), Kateryna Aleksieieva (Asseco Data Systems SA (Certum)), Kate Xu (TrustAsia), Lucy Buecking (IdenTrust), Luis Cervantes (SSL.com), Mahua Chaudhuri (Microsoft), Marco Schambach (IdenTrust), Martijn Katerbarg (Sectigo), Masaru Sakamoto (Cybertrust Japan), Matthew McPherrin (Let’s Encrypt), Michelle Coon (OATI), Mrugesh Chandarana (IdenTrust), Nate Smith (GoDaddy), Nicol So (CommScope), Nome Huang (TrustAsia), Ono Fumiaki (SECOM Trust Systems), Peter Miskovic (Disig), Rebecca Kelly (SSL.com), Rich Smith (DigiCert), Rollin Yu (TrustAsia), Roman Fischer (SwissSign), Ryan Dickson (Google), Scott Rea (eMudhra), Sean Huang (TWCA), Stephen Davidson (DigiCert), Sven Rajala (Keyfactor), Tadahiko Ito (SECOM Trust Systems), Thomas Zermeno (SSL.com), Tim Callan (Sectigo), Tobias Josefowitz (Opera Software AS), Wayne Thayer (Fastly), Wendy Brown (US Federal PKI Management Authority), Wiktoria Więckowska (Asseco Data Systems SA (Certum))
July 31, 2025 by Wayne ThayerMinutes of the CA/BF ServerCert Working Group, 2025-07-31Administrivia Minutes taken by Aaron Gable Recording started Attendance taken by Webex Note-well read by Wayne Thayer Agenda (shared by Dmitris Zacharopoulos) approved Prior minutes 2025-04-10 teleconference (taken by Trevoli Ponds-White): approved 2025-07-17 teleconference (taken by Scott Rea): not yet distributed Membership applications Joshua Garrett approved as individual Interested Party Ballot Status In discussion period SC086: Sunset the Inclusion of Address and Routing Parameter Area Names No updates at this time In IPR review period SC089: Mass Revocation Planning Recently published guidelines SC085: Require DNSSEC for CAA and DCV Lookups Published as TLS BR v2.1.6 Drafts SC087: Registration Number Improvement for EV Certificates Corey Bonnell: no updates at this time SC088: Persistent DNS DCV Michael Slaughter: no updates at this time Wayne Thayer: planning to move this into discussion period soon SC0XX: Process RFC 8657 CAA Parameters Wayne Thayer: was on hold until SC085 passed, now ready to proceed SC0XX: Validation method in TLS Certificates Clint Wilson: no updates at this time Topic: Debian Weak Keys Martijn Katerbarg: Planning to add P-521 Weak Keys to the CABF Debian Weak Keys repository This is not a new requirement; any CAs issuing P-521 certs should have generated these themselves already Any Other Business Next call 2025-08-28 August 14 is cancelled due to no available chairs Attendees Aaron Gable (Let’s Encrypt), Aaron Poulsen (Amazon), Alvin Wang (SHECA), Ben Wilson (Mozilla), Brianca Martin (Amazon), Chad Dandar (Cisco Systems), Chris Clements (Google), Clint Wilson (Apple), Corey Bonnell (DigiCert), Corey Rasmussen (OATI), Cynethia Brown (US Federal PKI Management Authority), Daryn Wright (Apple), Dean Coclin (DigiCert), Doug Beattie (GlobalSign), Gregory Tomko (GlobalSign), Inaba Atsushi (GlobalSign), Iori Kondo (Cybertrust Japan), Jaime Hablutzel (OISTE Foundation), Jeanette Snook (Visa), Jeff Ward (CPA Canada/WebTrust), Johnny Reading (GoDaddy), Josselin Allemandou (Certigna (DHIMYOTIS)), Jun Okura (Cybertrust Japan), Kateryna Aleksieieva (Asseco Data Systems SA (Certum)), Kate Xu (TrustAsia), Lucy Buecking (IdenTrust), Luis Cervantes (SSL.com), Mahua Chaudhuri (Microsoft), Marco Schambach (IdenTrust), Martijn Katerbarg (Sectigo), Masaru Sakamoto (Cybertrust Japan), Matthew McPherrin (Let’s Encrypt), Michelle Coon (OATI), Mrugesh Chandarana (IdenTrust), Nate Smith (GoDaddy), Nicol So (CommScope), Nome Huang (TrustAsia), Ono Fumiaki (SECOM Trust Systems), Peter Miskovic (Disig), Rebecca Kelly (SSL.com), Rich Smith (DigiCert), Rollin Yu (TrustAsia), Roman Fischer (SwissSign), Ryan Dickson (Google), Scott Rea (eMudhra), Sean Huang (TWCA), Stephen Davidson (DigiCert), Sven Rajala (Keyfactor), Tadahiko Ito (SECOM Trust Systems), Thomas Zermeno (SSL.com), Tim Callan (Sectigo), Tobias Josefowitz (Opera Software AS), Wayne Thayer (Fastly), Wendy Brown (US Federal PKI Management Authority), Wiktoria Więckowska (Asseco Data Systems SA (Certum))
Ballot SC-089: Mass Revocation Planning
July 22, 2025 by Wayne ThayerVoting Results Certificate Issuers 30 votes in total:
July 22, 2025 by Wayne ThayerVoting Results Certificate Issuers 30 votes in total:
2025-07-17 Minutes of the Server Certificate Working Group
July 17, 2025 by Wayne ThayerMeeting Title: CA/Browser Forum Server Certificate Working GroupDate: 17 July 2025 Meeting Ran By: Wayne Thayer Minutes Taken By: Scott Rea 1. Roll Call and Housekeeping Meeting called to order by Wayne Thayer.
July 17, 2025 by Wayne ThayerMeeting Title: CA/Browser Forum Server Certificate Working GroupDate: 17 July 2025 Meeting Ran By: Wayne Thayer Minutes Taken By: Scott Rea 1. Roll Call and Housekeeping Meeting called to order by Wayne Thayer.
Ballot SC-085v2: Require Validation of DNSSEC (when present) for CAA and DCV Lookups
June 18, 2025 by Wayne ThayerVoting Results Certificate Issuers 25 votes in total:
June 18, 2025 by Wayne ThayerVoting Results Certificate Issuers 25 votes in total:
Minutes of the F2F 65 Meeting in Toronto, Canada - SCWG, June 11, 2025
June 11, 2025 by Dimitris ZacharopoulosSCWG Minutes on Day 2 Wednesday, 11 June 2025, of the F2F 64 Meeting in Toronto, CanadaAttendance Wayne Thayer (Fastly), Dean Coclin (DigiCert), Tim Callan (Sectigo), Enrico Entschew (D-Trust), Andreas Henschel (D-Trust), JinHwan Shin (Deloitte KOREA), Masatoshi Shigaki (KPMG Japan),, Brian Hsiung (Sunrise CPA), Adam Frock (BDO), Yannick Thomassier (Certinomis), Tadahiko Ito (Secoom), Fumiaki Ono (Secom), Chris Clements (Chrome), Ryan Dickson (Chrome), David Adrian (Chrome), Josselin Allemandou (Certigna), Romain Delval (Certigna), Chad Dandar (Cisco), Ben Wilson (Mozilla), Tim Crawford (WebTrust/BDO), Chris Czajczyc (Deloitte), Scott Rea (wMudhra), Rebecca Kelley (SSL.com), Leo Grove (SSL.com), Luis Cervantes (SSL.com), Eric Cramer (Sectigo), Martijn Katerbarg (Sectigo), Nick France (Sectigo), Henry Lam (Sectigo), Tsung-Min Kuo (Chunghwa Telecom), Jay Wilson (Sectigo), Rob Stradling (Sectigo), Karina Goodley (Microsoft), Lora Randolph (Microsoft), Matthre McPherrin (Let’s Encrypt), Arnold Essing (Telekom Security), David Hsiu (KPMG Taiwan), Christophe Bonjean (Globalsign), Eva Van Steenberge (Globalsign), Gregory Tomko (GlobalSign),, Tim Hollebeek (DigiCert), Brianca Martin (Amazon Trust Services), Trevoli Ponds-White (Amazon Trust Services), Michael Slaughter (Amazon Trust Services), Aaron Poulsen (Amazon Trust Serivices), Jeremy Rowley (DigiCert), John Sarapeta (Google Trust Services),Nicol So (CommScope), Sandy Balzer (SwissSign), Jaime Hablutzel (WISeKey), Atsushi Inaba (Globalsign), Llew Curran (GoDaddy), Rollin Yu (TrustAsia), Jieun Seong (MOIS), Jozef Nigut (Disig), Kateryna Aleksieieva (Certum), Corey Rasmussen (OATI), Michelle Coon (OATI), Kate Xu (TrustAsia), Eric Hampshire (Cisco), Hisashi Kamo (Secom), Steven Diette (GoDaddy), John Mason (Microsoft), Pekka Lahtiharju (Telia), Tobias Josefowitz (Opera), Xiu Lei (GDCA), Aaron Gable (ISRG), Nate Smith (GoDaddy), Quan Nham (Fastly), Huang Nome (TrustAsia), Masaru Sakamoto (Cybertrust Japan), Renne Rodriguez (Apple), Rich Smith (DigiCert), Li-Chun Chen (Chunghwa Telecom), Masaru Sakamoto (CyberTrust Japan), Roman Fischer (SwissSign), Wendy Brown (FPKIMA), Hogeun Yoo (NAVER Cloud), Zurina Zolkaffly (MSC Trustgate), Clemens Wanko (ACAB’c / TUV AUSTRIA), Paul van Brouwershaven (SSL.com), Jos Purvis (Fastly), Eamon Zhang (TrustAsia), Peter Miskovic (Disig), Marco Schambach (IdenTrust), uis Osses (Amazon Trust Services), Matthias Wiedenhorst (ACAB’c), Jun Okura (CyberTrust), Nargis Mannan (VikingCloud), Adrian Mueller (SwissSign), Thanos Vrachnos (SSL.com), Hazhar Ismail (MSC Trustgate), Adriano Santoni (Actalis).
June 11, 2025 by Dimitris ZacharopoulosSCWG Minutes on Day 2 Wednesday, 11 June 2025, of the F2F 64 Meeting in Toronto, CanadaAttendance Wayne Thayer (Fastly), Dean Coclin (DigiCert), Tim Callan (Sectigo), Enrico Entschew (D-Trust), Andreas Henschel (D-Trust), JinHwan Shin (Deloitte KOREA), Masatoshi Shigaki (KPMG Japan),, Brian Hsiung (Sunrise CPA), Adam Frock (BDO), Yannick Thomassier (Certinomis), Tadahiko Ito (Secoom), Fumiaki Ono (Secom), Chris Clements (Chrome), Ryan Dickson (Chrome), David Adrian (Chrome), Josselin Allemandou (Certigna), Romain Delval (Certigna), Chad Dandar (Cisco), Ben Wilson (Mozilla), Tim Crawford (WebTrust/BDO), Chris Czajczyc (Deloitte), Scott Rea (wMudhra), Rebecca Kelley (SSL.com), Leo Grove (SSL.com), Luis Cervantes (SSL.com), Eric Cramer (Sectigo), Martijn Katerbarg (Sectigo), Nick France (Sectigo), Henry Lam (Sectigo), Tsung-Min Kuo (Chunghwa Telecom), Jay Wilson (Sectigo), Rob Stradling (Sectigo), Karina Goodley (Microsoft), Lora Randolph (Microsoft), Matthre McPherrin (Let’s Encrypt), Arnold Essing (Telekom Security), David Hsiu (KPMG Taiwan), Christophe Bonjean (Globalsign), Eva Van Steenberge (Globalsign), Gregory Tomko (GlobalSign),, Tim Hollebeek (DigiCert), Brianca Martin (Amazon Trust Services), Trevoli Ponds-White (Amazon Trust Services), Michael Slaughter (Amazon Trust Services), Aaron Poulsen (Amazon Trust Serivices), Jeremy Rowley (DigiCert), John Sarapeta (Google Trust Services),Nicol So (CommScope), Sandy Balzer (SwissSign), Jaime Hablutzel (WISeKey), Atsushi Inaba (Globalsign), Llew Curran (GoDaddy), Rollin Yu (TrustAsia), Jieun Seong (MOIS), Jozef Nigut (Disig), Kateryna Aleksieieva (Certum), Corey Rasmussen (OATI), Michelle Coon (OATI), Kate Xu (TrustAsia), Eric Hampshire (Cisco), Hisashi Kamo (Secom), Steven Diette (GoDaddy), John Mason (Microsoft), Pekka Lahtiharju (Telia), Tobias Josefowitz (Opera), Xiu Lei (GDCA), Aaron Gable (ISRG), Nate Smith (GoDaddy), Quan Nham (Fastly), Huang Nome (TrustAsia), Masaru Sakamoto (Cybertrust Japan), Renne Rodriguez (Apple), Rich Smith (DigiCert), Li-Chun Chen (Chunghwa Telecom), Masaru Sakamoto (CyberTrust Japan), Roman Fischer (SwissSign), Wendy Brown (FPKIMA), Hogeun Yoo (NAVER Cloud), Zurina Zolkaffly (MSC Trustgate), Clemens Wanko (ACAB’c / TUV AUSTRIA), Paul van Brouwershaven (SSL.com), Jos Purvis (Fastly), Eamon Zhang (TrustAsia), Peter Miskovic (Disig), Marco Schambach (IdenTrust), uis Osses (Amazon Trust Services), Matthias Wiedenhorst (ACAB’c), Jun Okura (CyberTrust), Nargis Mannan (VikingCloud), Adrian Mueller (SwissSign), Thanos Vrachnos (SSL.com), Hazhar Ismail (MSC Trustgate), Adriano Santoni (Actalis).
2025-05-22 Minutes of the Server Certificate Working Group
May 22, 2025 by Wayne ThayerCA/B Forum Server Certificate WG Teleconference-20250522Meeting Title: CA/Browser Forum Server Certificate WG Date: 22 May 2025 Chair: Wayne Thayer on belalf of Dimitris Zacharopoulos Minutes Taken By: Lynn Jeun 1. Roll Call Meeting called to order by Wayne Thayer; Begin recording.
May 22, 2025 by Wayne ThayerCA/B Forum Server Certificate WG Teleconference-20250522Meeting Title: CA/Browser Forum Server Certificate WG Date: 22 May 2025 Chair: Wayne Thayer on belalf of Dimitris Zacharopoulos Minutes Taken By: Lynn Jeun 1. Roll Call Meeting called to order by Wayne Thayer; Begin recording.